4
Snuffleupagus 0.8.3 - Elephant Gambit
source link: https://dustri.org/b/snuffleupagus-083-elephant-gambit.html
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
I just published a new release of
Snuffleupagus,
the hardening module for php7+ and php8+,
the version 0.8.3, codename "Elephant Gambit",
named after the chess opening.
This release is mostly a bugfix one, with a couple of novelties due to Laluka asking for them. Odds are that we might give a talk together in the future about them.
Changelog
New features
- Add the ability to dump the parameter passed to
eval - Add the ability to match on
eval's parameter - Add optional extended checks for
readonly_exec - Add config error for ini rules with identical key
- Add disabled functions return type to config export
Breaking Changes
- Mix the stacktrace in the sha256 for the filename of
.dump()
Bug fixes
- Make it actually possible to configure sloppy comparison on latests PHP7
- Allow
file://prefix ininclude()withreadonly_execmode - Fix a possible crash when exporting function list
- Fix a minor memory leak when parsing cookie-related configuration
As usual, if you want to help, we have some low hanging fruits ♥
See you in your PHP stack!
Recommend
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK